AWS Basic Interview questions and answers | Arkit
AWS – Amazon Web Services is the technology which growing faster in Information Technology world. In this, I am going to post 100 AWS Basic Interview Questions and answers. Best of luck with your interview.
AWS stands for Amazon Web Services. AWS is a platform that provides on-demand resources for hosting web services, storage, networking, databases, and other resources over the internet with a pay-as-you-go model.
- EC2 – Elastic Compute Cloud
- S3 – Simple Storage Service
- Route53 Highly Scalable domain naming system
- EBS – Elastic Block Store
- EFS – Elastic File system
- Cloudwatch and CloudTrail
- Key-Paris are a few of the components of AWS.
Key-pairs are secure login information for your instances. To connect to the instances we use key-pairs that contain a public-key and private-key for authentication.
S3 stands for Simple Storage Service. It is object storage where you can use RESTFUL API calls to PUT, GET, LIST, and DELETE. High scalable you can access anywhere in the world.
- The different pricing model for EC2 instances are as below,
- On-demand Instances
- Reserved Instances
- Spot Instances
- Scheduled Instances
- Dedicated Hosts
- Instance Store Volumes – Used for storing Operating system (Boot Device)
- EBS – Elastic Block Store – designed for high workload applications
EBS stands for Elastic Block Stores. They are persistent volumes that you can attach to the instances. With EBS volumes, your data will be preserved even when you stop your instances, unlike your instance store volumes where the data is deleted when you stop the instances.
Following are 4 types of volumes in EBS
- General-purpose SSD (gp2)
- EBS Provisioned IOPS (io1)
- Cold HDD (sc1)
- Throughput optimized (st1)
Following are the types of instances
- General-purpose Computer
- Storage Optimized
- GPU Compute
Auto-scaling allows you to automatically scale-up and scale-down the number of instances depending on the CPU utilization or memory utilization. There are 2 components in Autoscaling, they are Auto-scaling groups and Launch Configuration.
Reserved instances are the instance that you can reserve a fixed capacity of EC2 instances. In reserved instances, you will have to get into a contract agreement of 1 year or 3 years.
AMI stands for Amazon Machine Image. AMI is a template that contains the software configurations, launch permission and a block device mapping that specifies the volume to attach to the instance when it is launched.
EIP stands for Elastic IP address. It is designed for dynamic cloud computing. When you want a static IP Address to your instance you can get an IP address using an elastic IP pool and assign it to an instance.
AWS Basic Interview Questions and Answers
Cloudwatch is a monitoring tool that you can use to monitor your AWS resources. Like health check, Network, CPU, Memory. Application, and etc.
There are 2 types in Cloudwatch.
- Basic monitoring
- Detailed monitoring.
Basic monitoring is free and detailed monitoring is chargeable.
- Disk reads
- Disk writes
- CPU utilization
- Network Packets In
- Network Packets Out
- Network In
- Network Out
- CPU Credit Usage
- CPU Credit Balance
The minimum size of individual objects that you can store in S3 is 0 bytes and the maximum bytes that you can store for individual objects is 5TB.
- S3 Standard
- Infrequent Access
- One Zone-Infrequent Access
- Glacier Archival service
There are two ways that you can control access to your S3 buckets
- ACL – Access Control List
- Bucket policies
You can encrypt the data by using the below methods
- S3 (AES 256 encryption)
- KMS (Key Management Service)
- Encrypt data in your machine and upload to S3
The pricing model for S3 is as below
It’s all based on your data stored size, GET and PUT RESTful API Calls.
20000 Get and 2000 Put calls are free.
You need to enable versioning on both source bucket and destination to work with cross-region replication. Also, both the source and destination bucket should be in different regions.
Roles are used to providing permissions to entities that you trust within your AWS account. Roles are users in another account. Roles are similar to users but with roles, you do not need to create any username and password to work with the resources. It’s a temp token.
Policies/Documents are permissions that you can attach to the users and groups that you create. These policies will contain the access that you have provided to the users and groups that you have created.
There are 2 types of policies.
- Managed policies
- Inline policies
Cloudfront is an AWS web service that provided businesses and application developers an easy and efficient way to distribute their content with low latency and high data transfer speeds. Cloudfront is a content delivery network of AWS.
An edge location is a place where the contents will be cached. When a user tries to access some content, the content will be searched in the edge location. If it is not available then the content will be made available from the origin location and a copy will be stored in the edge location. Just like caching service.
40 Tera Bytes you can store
VPC stands for Virtual Private Cloud. VPC allows you to easily customize your networking configuration. VPC is a network that is logically isolated from other networks in the cloud. It allows you to have your own IP address range, subnets, internet gateways, NAT gateways, and security groups.
VPC peering connection allows you to connect 1 VPC with another VPC. Instances in this VPC behave as if they are in the same network.
AWS Interview Questions and Answers
Note: These are all the questions and answers are prepared for beginners and intermediate persons, not who have good exposure to AWS because they already know all of these terminologies.
NAT stands for Network Address Translation. NAT gateways enable instances in a private subnet to connect to the internet but prevent the internet from initiating a connection with those instances.
You can use security groups and NACL (Network Access Control List) to control the security to your VPC.
Snowball is a data transport solution that used source appliances to transfer large amounts of data into and out of AWS. Using snowball, you can move a huge amount of data from one place to another which reduces your network costs, long transfer times and also provides better security.
RDS – Relational Database Services
- Amazon Aurora
- MySQL server
- MSSQL server
Amazon Redshift is a data warehouse product. It is a fast and powerful, fully managed, petabyte-scale data warehouse service in the cloud.
SNS stands for Simple Notification Service. SNS is a web service that makes it easy to notifications from the cloud. You can set up SNS to receive email notifications or message notifications.
- Simple routing
- Latency routing
- Failover routing
- Geolocation routing
- Weighted routing
The maximum size of messages in SQS is 256 KB.
FIFO (First In First Out)
Multi-AZ (Availability Zone) RDS allows you to have a replica of your production database in another availability zone. The multi-AZ option is used for disaster recovery. You will have an exact copy of your database (replica). So when your primary database goes down, your application will automatically failover to the standby database.
Manual backups are known as snapshots.
Security Groups and Network access control list both can control the access at the instance level. Can control access at the subnet level Can add rules for “allow” only Can add rules for both “allow” and “deny” Evaluates all rules before allowing the traffic. Rules are processed in order number when allowing traffic. Can assign an unlimited number of security groups Can assign up to 5 security groups.
- Stateful filtering
- Stateless filtering
ELB stands for Elastic Load balancing. ELB automatically distributes the incoming application traffic or network traffic across multiple targets like EC2, containers, and IP addresses.
3 types of the load balancer
- Application load balancer
- Network load balancer
- Classic load balancer
Programmatic access (For automation purpose)
Following are the benefits of auto-scaling
- Fault tolerance
- Cost management
Security groups act as a firewall/IPtables that contains the traffic In and Out rules, like Allow or Deny particular ports.
Shared AMI’s are the Amazon Machine Images that are created by other developers and made available for others to use.
Dynamic port mapping, multiple ports multiple listeners are used in Application Load Balancer, One port one listener is achieved via Classic Load Balancer
Some More AWS Questions and Answers
A large section of IP Address divided into chunks are known as subnets
Remove Internet Gateway & add NAT Gateway, Associate subnet in Private route table
No reducing volume size is not possible however you can increase EBS volume size.
Yes, when you have versioning enabled in bucket level and if you do not delete versions.
Note: Deleted S3 buckets are not recoverable.
By default AWS offers a service limit of 20 running instances per region, to fix the issue we need to contact AWS support to increase the limit based on the requirement.
Yes, it’s possible from console use to modify volumes in section give the size u need then for windows go to disk management for Linux mount it to achieve the modification
Yes, it’s possible to stop rds. An instance which is non-production and non multi Available Zone
Thanks for your visit. A few more AWS Interview Questions and answers will post in the next part.
Please share with your friends.
for More AWS Articles